URLhaus Database

You are currently viewing the URLhaus database entry for http://nhipcauytevietnhat.com/efficiency-all-iuehb/BJug3jyhuyilWhCQs3YksSaqQW7tpyvmYpb91wTZdbluIo1EKoPE5VrBbcx8zHDAR9YT/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	973026
URL:	http://nhipcauytevietnhat.com/efficiency-all-iuehb/BJug3jyhuyilWhCQs3YksSaqQW7tpyvmYpb91wTZdbluIo1EKoPE5VrBbcx8zHDAR9YT/
URL Status:	Offline
Host:	nhipcauytevietnhat.com
Date added:	2021-01-21 07:51:14 UTC
Last online:	2021-05-13 09:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2021-01-21 07:52:03 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	3 months, 22 days, 1 hours, 27 minutes (down since 2021-05-13 09:19:45 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2021-01-23	S175CPQATAR90TO.doc	doc	70ac185fdce6d551871ebe57cb2bd1b36cc4d721755c57e27a21fc81beb31ce2	45.16%	Heodo
2021-01-22	THG8NI.doc	doc	ca558091c68ff2e4fc47b90cb98ed6e1eccb1f6362e8dc9cf47d91c5295b1b13	45.16%	Heodo
2021-01-22	FDF931CINLXXL.doc	doc	25eae8684f15cff80197f955eff7899e81081b1d9dd37eb92f62d7bb8bd796ad	47.54%	Heodo
2021-01-22	8G1EH71S.doc	doc	58679381a46d62f343527eddb0e188a30184ea770eac5182c427ff13ec75412c	44.44%	Heodo
2021-01-22	3OE4IULHMQ9.doc	doc	6776f53efed3f91af5955bfaf11f47dbf6fcf5b5a419e1bcc5a29fb89a61ea49	40.98%	Heodo
2021-01-22	1QSDOBNM5KEAILXT.doc	doc	df60461aab62bf09077b67a5fd122fa46ed22f8a8d184035786a7ee3be961927	45.16%	Heodo
2021-01-22	OJQZDH.doc	doc	c82d9f636e5557e336f7590d7012768bd8060c6ccbe44a3a5c1c2e3976c62b3d	n/a	Heodo
2021-01-22	FDYX4J4M13LR1.doc	doc	572f2066bd622ffae9324046ef4e96026a4bff32a177c91ea779269d75ac98b7	38.71%	Heodo
2021-01-22	RG3ZDY4CKL9ZSRAD.doc	doc	d369edd4ee295fafd1231bb5d370fff75a48505360a64708bce6418c7f2974a1	38.71%	Heodo
2021-01-22	QTPCD3F7UHRUFGGH.doc	doc	8af280e70fb92f35455e9f18296c0fbaae42288517c6925a9db673a9368e9bf3	39.34%	Heodo
2021-01-22	0U3UDJJJ.doc	doc	9849abef3e272dea13e211d946b289bc80ab32efd5e83178ca17a6bb094be274	35.48%	Heodo
2021-01-22	K6A4K0XF2.doc	doc	dda31bb204e2a3207fe515d3d1952604f010c2b3bfad0df8a1b33e7b4bde2b94	33.87%	Heodo
2021-01-22	U8HF7Q2FC0F.doc	doc	912f6f38547eca79cdd2f66b1252ac5b777f454c8d4da059d319ca9a42d1cf24	31.75%	Heodo
2021-01-22	RBRJF8.doc	doc	d25d5d359b01bb46095375c553f2b4ea91e2e4abee77df10d21d6ab08740dc97	35.48%	Heodo
2021-01-22	TL2OVZYY866P.doc	doc	1cc3ce82c3d5c07a7ad73b7890969696e032964b0773b29a1f21a68dc55e23d6	n/a	Heodo
2021-01-22	VWBHPLNSPEN.doc	doc	7d208c37e1692e448cb66adc388c1d5a77f06bc1ffef7dcf756ee681530158ab	33.33%	Heodo
2021-01-22	WYLN13GIYJ.doc	doc	0c12f24715c776b1cca7c4fcae52f35da82d11bc17f962cbc7a01b7baf4e0078	32.79%	Heodo
2021-01-22	D94E7Q04JHV.doc	doc	df7956bed96a8d21cc40f5f0abfb5fd98df9ca8f98982661f6ad3c9bf38a2740	n/a	Heodo
2021-01-22	BT67OP.doc	doc	10aefc8e1c8b78761bcd56302c87e58b3801cf8582f56ef281ae3350327e94c7	32.26%	Heodo
2021-01-22	8UFDGY2YQTD91N.doc	doc	c7f261f11d0e317860ef68857f8457e85439e702a7c90170b9b74b1508656b99	33.33%	Heodo
2021-01-22	L9V671NNLR5.doc	doc	dac155109715a77d82a6c654ed93b44061ee15f3d53e34c0b8e9a80680e58bdb	31.75%	Heodo
2021-01-22	UY2SVM.doc	doc	df5ff0dd34808825942b6b896c5129f63bc36f8fbbba7f3ce145cced467c662a	n/a	Heodo
2021-01-22	NS0KZE.doc	doc	79901cb00c81b1c2bb626096ee6bdf18e1bb6e757f7c48c0bf1c0377e9d3cde8	31.75%	Heodo
2021-01-22	WRKPJM.doc	doc	c7eaa8437734ed847bddd8eb8d3575231417b9c011058bb896d72cf39450393f	31.75%	Heodo
2021-01-22	CPILAHL1JL9OCTZ.doc	doc	19eabf766e8a1eab6d6736638f9331a3ed1606b329cf336e4a564c8b0ab220f4	33.33%	Heodo
2021-01-22	P64H4AUI2YKA2Q4F.doc	doc	a067ec4a7e637fa20acefb3000b7f930b3b9919dd7eafd7a3d1960cdb19a8f63	30.65%	Heodo
2021-01-22	WN0Q17DK.doc	doc	4645da6dadb364b09a0a89f510be736a7bf0d088e5b79a002bdd4bf430ff9fa0	32.26%	Heodo
2021-01-22	JCXENZSB.doc	doc	0dc0f00a3ed385b6bff2f9188766ae977a173405c9bfed86474e9f7fccfde9c1	31.75%	Heodo
2021-01-22	DILD0KTS8.doc	doc	ea4647b0d167db673ab1ed93b5cb8b182369c175593a8971e1b04a6f24bf9a13	31.75%	Heodo
2021-01-22	BAANHN0JYR.doc	doc	5c7bb8c2bd7a115517be5d5b370391154304ddb68b3d29a464c4cb93521e1bf6	31.75%	Heodo
2021-01-22	0RUP7SVSPUUIAHS3.doc	doc	ae7cee3d5ec74802896c4cb8fb6008beaa8803ce3450361f3dcf516db44c4e0e	n/a	Heodo
2021-01-22	H5PMX51F5IRELU.doc	doc	e6ff49287012d58677f10aee8924f9f40ec2cbdc7ed836f090e195e593068cda	n/a	Heodo
2021-01-22	TO9OGG.doc	doc	0939fe6d39e0d83811a9940d4648fe84ca63fb970749743bdbb779be2a07c683	n/a	Heodo
2021-01-22	FHV4AB09EG1.doc	doc	8e9f4c609a5f2cb5b124acd61a50de2203a242f9ff6fa2ca6285016bf5189874	n/a	Heodo
2021-01-22	O6Z0S8M8M.doc	doc	64984623624fbec06c253d1396140873193f53152579eb4f8c57117665a3ca03	32.26%	Heodo
2021-01-22	Z3915HXY.doc	doc	f82f36ec2c4010892c1dbd0e9c4c1315653eb04b2cc3905bdc90215adfe50777	31.75%	Heodo
2021-01-22	EDEWBV15.doc	doc	4ffa47e0f118abfe29b729542aaa390586651144b3c79a2272f3808bc4f4310a	29.03%	Heodo
2021-01-22	VRDXYS6AWJG.doc	doc	59bc01982760e33fe233b9563bee465ba59c15dee8d88180cc40ecec4eda0a32	30.65%	Heodo
2021-01-22	C70LTS.doc	doc	1bb0e863fbfd980c0278f394d12e3557eb6460cdc059dd1d04e91e3d69ec688c	n/a	Heodo
2021-01-21	ZDEQM0NC1A6SW8.doc	doc	3a0235b5137c1d8dffa67e97c6dbe13cfc7117e3c62dfee05d8897acdea83b5c	40.32%	Heodo